Planning the risk assessment approach

This recipe addresses risk assessment, including the definition of risks and threats that will influence your decision on the control objectives and activities you choose. The recipe provides further advice on control selections.

There are several reasons for using a risk assessment approach for your compliance program.

The first reason is already mentioned in recipe 1 step 2. There are several regulatory requirements of which risk assessment is an integral part.

The second reason is that risk assessment allows you to have a systematic approach to your control selection. Risk assessment will make you aware of the kind of risks, threats, and vulnerabilities your company faces with respect to its sensitive data, ...

Get Microsoft System Center 2012 R2 Compliance Management Cookbook now with the O’Reilly learning platform.

O’Reilly members experience live online training, plus books, videos, and digital content from nearly 200 publishers.